[Rats] Re: Security considerations of remote attestation (RFC9334)
"Smith, Ned" <ned.smith@intel.com> Fri, 24 January 2025 00:25 UTC
Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8DA13C1CAF36 for <rats@ietfa.amsl.com>; Thu, 23 Jan 2025 16:25:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.248
X-Spam-Level:
X-Spam-Status: No, score=-2.248 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q0iSXD6LXBju for <rats@ietfa.amsl.com>; Thu, 23 Jan 2025 16:25:49 -0800 (PST)
Received: from mgamail.intel.com (mgamail.intel.com [198.175.65.18]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 93F29C1D4A80 for <rats@ietf.org>; Thu, 23 Jan 2025 16:25:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1737678349; x=1769214349; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=RhnMkIu5C1oYuWb8hURwWvHyYav2BEkS9Vxp7d4eW94=; b=Zv+fBQpTTn4WcDhZjc4GYnGvILU0gbP/ISman6BUIw2XVt2lEBhud2kV DKGrQfgmmV6m1N+cv80vPqZVjtoqVv6MNr8bTu37WOYvrbruOteq7Ozr/ W/m4vrsCDqjrZqM/MLlKS7WeIYzydrQ38vGLiTEJEEUvpVxoza+ijNp7c 6efoUj/gD2g8RF/2ZiZOHCZ/Ta4PdEHEz2iUz9ADNoRyy/XOJrnpEn33H cXIZxcIEE2Vup0s8V8J6vzz9PAfCZm2/BfWLrIjsnGZBaKe3AI5FwQQVB 2R2MkuaHz27+P84iHgNOprin0cfvHHrBAwxtF5jEne78g8AP0Xjlql6UV w==;
X-CSE-ConnectionGUID: GQAU1b9ZQMiGY5PeEVMKew==
X-CSE-MsgGUID: EQng2qA1SAOsn6A5VB7ywQ==
X-IronPort-AV: E=McAfee;i="6700,10204,11314"; a="38307468"
X-IronPort-AV: E=Sophos;i="6.12,310,1728975600"; d="scan'208,217";a="38307468"
Received: from orviesa010.jf.intel.com ([10.64.159.150]) by orvoesa110.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 23 Jan 2025 16:25:48 -0800
X-CSE-ConnectionGUID: AUSfks9GRN2Gju2A4YWAxQ==
X-CSE-MsgGUID: 7dWsdvpsSd+cjmZKQDAYrA==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="6.12,224,1728975600"; d="scan'208,217";a="107470752"
Received: from orsmsx603.amr.corp.intel.com ([10.22.229.16]) by orviesa010.jf.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 23 Jan 2025 16:25:48 -0800
Received: from orsmsx601.amr.corp.intel.com (10.22.229.14) by ORSMSX603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.44; Thu, 23 Jan 2025 16:25:47 -0800
Received: from ORSEDG602.ED.cps.intel.com (10.7.248.7) by orsmsx601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.44 via Frontend Transport; Thu, 23 Jan 2025 16:25:47 -0800
Received: from NAM02-DM3-obe.outbound.protection.outlook.com (104.47.56.42) by edgegateway.intel.com (134.134.137.103) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.44; Thu, 23 Jan 2025 16:25:46 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=Kxdza55ZjUUZEVu0VUlVJE6QjUiounFywSwhHQi2j/mPowp1q6Ks/EmaNxUllFmUa9jHU4oj11YHojnOI+RcgF9/IOAOqkWIVTQNsytFY0RAz2IGNYnlF3/8y32TvR2FLkS/yLyxjsMJD54le2/P5ijBf1kRkaADipLm8vKC5qdYE5t2E5edzm0+9iCAdVRwDBA38mLXYe9ZbCIph7YwrUH22nzCu9JgPTXlR6HvOp66QuCmLmyimt5eMeA9iUroA/xL7JaOWCSjQPWqwaDj249T8VdphnymMKK3V42AW6rlN88UBYzHcY4NoKBQ24WH5qot8GpF1gEs1LU6SBiVMg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bTvP0dsb2L2xE5xlQlBlRIob/2/8VkAFZOD4zQ2ApXY=; b=l5HRfTVqVj7FCXREH/yKhJQD0omYIhP/wwW3TRhNzgeDTbOBvmPbGhaSBcNtQuS8WR4IzWPbtWiB0tzYk+1gaigG0eYhd5Si9Q3k1z29h2I5f4un8ZX13zSob2u2qtWj/7ZAe/nl3hrkkdek/uEByt8qoXQxU68Oy6qeuYWnbNDn8zpaJd+vb1+CtUY9dgtahHbO8btehJ9MfCZnz03Uq0ltZuAcC1Z5lkRB1knVuOMqa6m6cYi9BuePuBwFpnUTfGq4HH37wWrsp7swoisEq1SzIlHMXRF3YFp3KpELTVi8uMWbiiLPbyWScMzaJjF+2asZ72DNo43h6XbLUmfBtg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by DM6PR11MB4513.namprd11.prod.outlook.com (2603:10b6:5:2a2::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8356.22; Fri, 24 Jan 2025 00:25:40 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7%4]) with mapi id 15.20.8377.009; Fri, 24 Jan 2025 00:25:40 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>, "Panwei (William)" <william.panwei@huawei.com>, John Kemp <stable.pseudonym@gmail.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Re: Security considerations of remote attestation (RFC9334)
Thread-Index: AQHbXPb/XDvhMJE8pEquTuSjUgxYdbMDR+MAgAApPwCAAE4dgIAALjKAgAAgfICAALHsgIAAmOsAgAAbOQCAAilMAIAAeDoAgAWqR4CAAMrcgIAAEMSAgAAHnoCAAafyJIAAIqwAgAPTLYCAAQiegIAP5OYZ
Date: Fri, 24 Jan 2025 00:25:40 +0000
Message-ID: <CO1PR11MB5169293FDD81C96F542A4D91E5E32@CO1PR11MB5169.namprd11.prod.outlook.com>
References: <4ffdd034-05ec-4565-9cad-b40ff82f83fc@tu-dresden.de> <6c8ccd3f-4186-4958-a916-3e627709e55c@tu-dresden.de> <2ae4aec812e04d8aab44aac53781fcae@huawei.com> <0B1D3D34-3D4D-4DF1-A125-8CF4AFAA4C6A@island-resort.com> <3f1efaff-db26-4e54-b26b-d74a6dc140c3@tu-dresden.de> <272FC0C8-A49A-46D6-B9B1-67127FABC0A3@island-resort.com> <34b8ea44-e4b7-4024-873b-e939717c6259@tu-dresden.de> <2E15F514-29BF-4763-A844-5E38CDEF5791@island-resort.com> <17359f9b-914e-4d3d-8923-92bdf2cc887e@tu-dresden.de> <983AE2D0-D1CF-43F6-8888-F6D0487B4B8E@island-resort.com> <bf973538-b390-4c60-8c99-7a93f00c3833@tu-dresden.de> <F78D9011-E0A8-43E6-A1BA-DDA44BF24348@island-resort.com> <57ff8532-ffa7-4dfc-8f51-2bb8764e4a25@gmail.com> <0bf9fa63-3d3e-47fc-b757-d7f8c0d3fa9c@tu-dresden.de> <8f765ee8-08e4-4fd6-9362-aee70e0b09fc@gmail.com> <CO1PR11MB5169C33046305CE096FEA36DE51C2@CO1PR11MB5169.namprd11.prod.outlook.com> <003f6611-efd4-4b41-8bd8-a1e8d89dab8a@tu-dresden.de> <2753ea96e5c842e2832b68e762638760@huawei.com> <2ce75ea8-791b-4d42-be64-326309b70fbe@tu-dresden.de>
In-Reply-To: <2ce75ea8-791b-4d42-be64-326309b70fbe@tu-dresden.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR11MB5169:EE_|DM6PR11MB4513:EE_
x-ms-office365-filtering-correlation-id: 715eefcc-d799-4f97-c2b0-08dd3c0da1aa
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|376014|1800799024|13003099007|7053199007|38070700018|8096899003;
x-microsoft-antispam-message-info: pHvjrtXumSlbdM5npVxgUvdc180sqsdq/oXkGmpBygQbUfLqfeEXEUvEgF2rwsHvDTaxVpDuL/tUhyEYh0n1YMHsoCkYwDQsIXEfqmhBlS5/9cGYx7i2OszIF9/MAdxCWb99xA2B4lyP5CBjltJk6Y04XNx+82Xy9GMcX4emC6t4IxAJT6VprTKbyv5rC2pq0peWdiCn5oY+cBs4oBSS7UBYwgptWV+PtsNiPlALUe47caWBriAMzJRgjY4E9iXl0jIlyIaoVB8saMxq24bvyMXBkDsmv6swi4dZZtdXBN9729NtGe8R7XR0X6JEGCu3mAHU8/hoDsyIxE+ztRXkksq4p3taJEBCosqgfEDNGYsaaPeJTDTvJ3FoX/xZue4aGnCfsBx7id6WtFK6XeOHVzKVFHCbVKcJk9TGZ7gzzbzhhx61h6yOBIrMiM8hxL+WB8CYf0DCrIGh9SIvB30W9+sBOacB25pmRL9h82BcjEvXvb0HSdUwoIYaKsES1JROb25AoluUtvcO517Qzjs3hljjH70yN2M9UrbbDBGC9xRxZ6ijjWzScOxans9OdsRSNG1pB4xbtHyT3nAk+4P9TaUsi80bfZe2I1n4FR0OVx4nalB7l43Sum83Dfy/Yr3uws2pneCCw6pimADWAYcIzD5PlkzkBJLyFo7UVD8z+QrUaODhl9RBDmXe9FkTETUbUSBuCXr9ofwxBBNT7kAU5hnxtoR0HjPFRZlyc8gv1zWT+4iwqgKIv39dbxeZJegnQTP3emXJGhCjIOhzZhPkGUxv6PShBgNFYWiF2t4b7sAEvlQRKZuKpPJg/8L8JVoawPBSt5f9niVnLh5f4cU0S3OuL0mHIwN5DuLb2S7v8Mq65JqcTrFG0ETzm1WD5omyLMXkEk50maSGd5vzOFiK+aFyxJK5MvmqYWUmTor6WX9mLz76+sTwMgHBSF67tTX7KIkOGfAd4bOMq/C4sgN0wJs/T8Q2lhSKzeKHBVYX3XoMSQ5hIDFOfr4nAyVUVWb0if5i0HNXuUWj3i5202/6inudGQ7IFCVXH8hvACr4WUPcbJOa6E29lmxapfgrEQUhcEkrKG/omRyBJNjTMXUkiBXceZDb/ZTPQBu609wE2n3Zj5PKcVCP6MkhjIjwdYBuYlcf9aOeiSAn4xRhBX0sGWLPV+MZ6plsyrtixMWQbf2aNkrQJ4Txbso097oX/9yJL4zGUzeyn3zQ666TqGuyLmQ3eoOpBXoSbNR7kAuY7IrCgIlZQUnCr2c97RGwWBwZFbf5aRkRy2IeZ368bpM+t8WSx7e5/hjgdCVqBWhEKk5mIzs0TBANUGQaWLhyA3dVU61BRP5VNJEj6XcMsGlxazCTefoN9j4cSUMJZsX6ZqmahP5ODuTRhV2SmeuoEFfhFAzXLdaXHTGOEZlPtx/8kg==
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CO1PR11MB5169.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(376014)(1800799024)(13003099007)(7053199007)(38070700018)(8096899003);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_CO1PR11MB5169293FDD81C96F542A4D91E5E32CO1PR11MB5169namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 715eefcc-d799-4f97-c2b0-08dd3c0da1aa
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jan 2025 00:25:40.1008 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: m/CXH7+FaFI7Jqm17B4xojDZMHqKop+/EQzFzfQ+z9W0uC2SdZxW+QtrGc4+RO+nQVDlMbDQDriIiElUMSrh5A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB4513
X-OriginatorOrg: intel.com
Message-ID-Hash: A3GB2BJCN27A5EH3HUZHXGKWFPMTV7EU
X-Message-ID-Hash: A3GB2BJCN27A5EH3HUZHXGKWFPMTV7EU
X-MailFrom: ned.smith@intel.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Security considerations of remote attestation (RFC9334)
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/8VkynSWqwHlI_MiFsKXUjCjprEM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
See inline [nms] On 1/13/25, 13:26, "Muhammad Usama Sardar" <muhammad_usama.sardar@tu-dresden.de> wrote: Please see inline On 13.01.25 06:38, Panwei (William) wrote: On 05.01.25 19:48, Muhammad Usama Sardar wrote: Below I am assuming a remote attestation solution based on digital signatures. At a high level, there are three main keys: 1. Attestation Key (AK): It is used for signing attestation claims. 2. TLS Identity Key (TIK): Ephemeral Key (EK): It is a key generated within a TEE and its public part is signed by AK. However, the TLS peer (TLS client in my case) has no prior knowledge about this key. [WP] In your case, I think you mean this TIK EK is the key of the TLS server and the TLS client has no prior knowledge about this key. Correct. In case the visualization helps, see Fig. 8 in [1]. Does the TLS client have knowledge of the AK? For simplicity, let's assume TLS client has the public part of AK. There are bigger issues otherwise. Could the identity of the owner of this TIK EK be signed as long as the public part by the AK as well? I guess it’s doable. I think you mean s/as long as/along with. Here is my pain point: It is a key generated somewhere in the cloud; who is its "owner" and what is his "identity"? [nms] Every authentication use case is an attestation use case. The TIK may also be attested implying there is an EK signing evidence about the TIK. Some drafts referred to this as “key attestation”. So for every key in a certificate path that stems from an EK, there could be a key attestation context echoing its trust properties. This can lead to a very complex graph problem without simplifying assumptions. RFC9334 suggests that a trust anchor policy can be used to simplify the otherwise unwieldy graph problem. Provably correct security that choses to not allow TA policy as an acceptable precondition is faced with having to consider the complexity of the graph. 3. TLS Identity Key (TIK): Long-term Key (LTK): It is the key bound to the machine's long-term identity (assigned name/FQDN etc.) and it is the key which is typically used to provide "authentication" in standard (non-PSK based) TLS protocol. [WP] Key #2 is generated within a TEE and its public part is signed by AK. What about Key #3? Is Key #3 stored in a TEE and this secure storage is attested (signed) by the AK (Key #1)? I think there should be some protection, but it is not specified in [2]. [nms] A formal analysis likely will require stating assumptions that some of the keys are determined to be trustworthy by policy so that the other keys’ trust properties can be analyzed within the context that they are defined (aka as part of the TLS-attest spec). Typically 1 is more protected compared to 2. Breaking 1 leads to trivially breaking 2. [WP] Key #2 is generated and stored within a TEE, and I think Key #1 also needs to be stored within the TEE. Correct. So are these two keys protected at the same level? No, Key #1 is typically more protected compared to Key #2. If Key #1 leaks, the security of all VMs on that platform breaks. If Key #2 leaks, only that specific VM is affected. [nms] It would be helpful if there was a way to express protection level as a property of the key (aka key attestation). Then a protocol analysis can capture key protection level (whether actual or assumed) and analyze whether there is an escalation of privilege due to a key at a (assumed?) lower level affecting the level of another key. The security principle is the system is only as strong as the weakest link. So, if key #1 is more protected than key #2, but key #2 is related to key #1 in such a way that trust in key #1 depends on trust in key #2. The effective trust for both can’t be higher than the key #2 level. Usama [1] https://ieeexplore.ieee.org/document/10752524 [2] https://www.ietf.org/archive/id/draft-fossati-tls-attestation-08.html#section-6.2
- [Rats] Security considerations of remote attestat… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Alexander Stein
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Laffey, Tom (HPE Aruba Networks)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar